Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/rKfGcBh4AxjEKGhdOm3zOfvRA8w.roa
File: rKfGcBh4AxjEKGhdOm3zOfvRA8w.roa (raw, json)
Hash identifier: 3BMetvlirwUC4KmDPv3Y52QTVZ0Zr92cpSnlj669CPE=
Subject key identifier: AC:A7:C6:70:18:78:03:18:C4:28:68:5D:3A:6D:F3:39:FB:D1:03:CC
Certificate issuer: /CN=1502af713e36e52c71866c8a9ebdacf3d8629b68
Certificate serial: 0A8E0553
Authority key identifier: 15:02:AF:71:3E:36:E5:2C:71:86:6C:8A:9E:BD:AC:F3:D8:62:9B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQKvcT425SxxhmyKnr2s89him2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/rKfGcBh4AxjEKGhdOm3zOfvRA8w.roa
Signing time: Sat 01 Jan 2022 00:54:55 +0000
ROA not before: Sat 01 Jan 2022 00:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29208
IP address blocks: 193.84.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177079635 (0xa8e0553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1502af713e36e52c71866c8a9ebdacf3d8629b68
Validity
Not Before: Jan 1 00:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aca7c67018780318c428685d3a6df339fbd103cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9c:eb:8d:14:9c:27:88:9a:07:26:fc:2e:c2:
1d:b9:96:11:04:d3:7b:94:c9:57:70:91:84:49:4b:
76:b6:86:81:fd:e8:58:37:03:c2:8a:b0:7c:12:e1:
31:7f:2a:b1:c6:33:6b:ff:f9:dd:3c:c1:36:6d:cd:
9c:58:80:0e:fa:61:35:08:e9:fb:b7:75:30:c4:5a:
c2:4e:a9:78:af:98:8f:fb:64:bd:64:61:54:5a:e6:
53:53:32:74:5c:cf:6f:0f:ab:92:bd:9d:df:e1:a7:
b6:47:31:73:60:e2:78:48:b5:a5:02:a6:7e:3a:26:
5e:3c:4a:5a:59:e9:45:15:80:94:d4:33:af:49:9c:
bc:0a:01:f9:74:52:ad:47:d6:9d:91:a8:05:3d:55:
93:4c:da:ee:96:f7:25:8e:2d:4d:4f:4e:b7:45:98:
8d:51:dd:20:31:fd:ea:53:c0:01:60:77:40:c8:3a:
a5:6d:5a:0d:8e:d9:cc:61:d9:2b:1a:5a:9c:75:e3:
04:46:c2:6b:55:df:d8:6e:e2:d4:2c:17:97:4d:23:
03:04:c7:c4:09:3d:5c:43:39:98:cb:10:be:71:04:
49:07:64:ae:af:69:3b:7e:79:f5:52:dc:10:8f:3e:
74:e0:38:f6:01:3d:a2:7b:4f:30:7f:2a:bd:bd:1e:
a7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A7:C6:70:18:78:03:18:C4:28:68:5D:3A:6D:F3:39:FB:D1:03:CC
X509v3 Authority Key Identifier:
keyid:15:02:AF:71:3E:36:E5:2C:71:86:6C:8A:9E:BD:AC:F3:D8:62:9B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQKvcT425SxxhmyKnr2s89him2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/rKfGcBh4AxjEKGhdOm3zOfvRA8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/9dcc25-5b0a-4c3e-9149-5a8230e7643a/1/FQKvcT425SxxhmyKnr2s89him2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.68.0/24
Signature Algorithm: sha256WithRSAEncryption
51:d6:ff:71:d0:f6:94:77:bd:44:38:53:65:0a:ef:b8:e3:98:
3b:95:08:f0:ca:1e:d7:12:f5:91:57:7e:43:1f:85:77:15:e8:
bf:1d:53:07:b8:5f:70:c2:53:d6:0b:e5:61:2a:a0:74:b4:aa:
c8:1b:f2:eb:a5:a7:d8:e1:28:bf:7f:1d:2c:49:aa:b5:a3:b6:
e2:21:dd:92:e4:77:49:ab:51:a8:36:2a:86:62:6a:eb:1c:0a:
5d:0b:c5:af:a2:b6:13:a8:3d:8b:c7:c2:05:cd:4d:07:c7:a7:
a3:1f:22:b2:27:23:d5:41:93:02:4e:32:cf:0f:34:02:fe:1b:
b4:59:c2:63:42:fe:a7:5f:71:43:c9:67:6f:7b:3c:b0:01:40:
0f:d9:7c:ff:2d:55:8f:e1:f6:52:55:ed:6c:7e:e6:9b:9d:03:
b3:56:d3:f9:9f:17:da:a4:d3:0d:b7:d4:61:5d:1d:c7:43:42:
34:0d:b6:77:13:5b:cf:9c:85:34:a3:e8:b4:9a:8d:48:b3:59:
92:64:c6:51:23:20:6a:5f:df:76:ff:b7:a6:b1:e8:80:d9:a4:
0b:43:83:90:db:15:a4:bc:55:b4:02:7a:c5:9f:76:09:fc:7d:
39:f8:22:94:86:55:c3:53:c6:53:cd:a7:22:68:c2:bc:f2:b4:
c0:26:5c:e6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECo4FUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
NTAyYWY3MTNlMzZlNTJjNzE4NjZjOGE5ZWJkYWNmM2Q4NjI5YjY4MB4XDTIyMDEw
MTAwNTQ1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWNhN2M2NzAxODc4
MDMxOGM0Mjg2ODVkM2E2ZGYzMzlmYmQxMDNjYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJCc640UnCeImgcm/C7CHbmWEQTTe5TJV3CRhElLdraGgf3o
WDcDwoqwfBLhMX8qscYza//53TzBNm3NnFiADvphNQjp+7d1MMRawk6peK+Yj/tk
vWRhVFrmU1MydFzPbw+rkr2d3+Gntkcxc2DieEi1pQKmfjomXjxKWlnpRRWAlNQz
r0mcvAoB+XRSrUfWnZGoBT1Vk0za7pb3JY4tTU9Ot0WYjVHdIDH96lPAAWB3QMg6
pW1aDY7ZzGHZKxpanHXjBEbCa1Xf2G7i1CwXl00jAwTHxAk9XEM5mMsQvnEESQdk
rq9pO3559VLcEI8+dOA49gE9ontPMH8qvb0ep78CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSsp8ZwGHgDGMQoaF06bfM5+9EDzDAfBgNVHSMEGDAWgBQVAq9xPjblLHGG
bIqevazz2GKbaDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZRS3ZjVDQyNVN4eGhteUtucjJzODloaW0yZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODUvOWRjYzI1LTViMGEtNGMzZS05MTQ5LTVhODIzMGU3NjQzYS8x
L3JLZkdjQmg0QXhqRUtHaGRPbTN6T2Z2UkE4dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUv
OWRjYzI1LTViMGEtNGMzZS05MTQ5LTVhODIzMGU3NjQzYS8xL0ZRS3ZjVDQyNVN4
eGhteUtucjJzODloaW0yZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFURDANBgkqhkiG9w0BAQsFAAOC
AQEAUdb/cdD2lHe9RDhTZQrvuOOYO5UI8Moe1xL1kVd+Qx+FdxXovx1TB7hfcMJT
1gvlYSqgdLSqyBvy66Wn2OEov38dLEmqtaO24iHdkuR3SatRqDYqhmJq6xwKXQvF
r6K2E6g9i8fCBc1NB8enox8isicj1UGTAk4yzw80Av4btFnCY0L+p19xQ8lnb3s8
sAFAD9l8/y1Vj+H2UlXtbH7mm50Ds1bT+Z8X2qTTDbfUYV0dx0NCNA22dxNbz5yF
NKPotJqNSLNZkmTGUSMgal/fdv+3prHogNmkC0ODkNsVpLxVtAJ6xZ92Cfx9Ofgi
lIZVw1PGU82nImjCvPK0wCZc5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:31 2024 by rpki-client on console-fra.rpki-client.org